[Frugalware-security] [ FSA-441 ] kernel
Miklos Vajna
vmiklos at frugalware.org
Mon May 5 15:05:24 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Frugalware Security Advisory FSA-441
Date: 2008-05-05
Package: kernel
Vulnerable versions: <= 2.6.24-3
Unaffected versions: >= 2.6.24-4kalgan1
Related bugreport: http://bugs.frugalware.org/task/3050
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1375
Description
===========
A vulnerability has been reported in the Linux kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
A race condition error exists in the dnotify subsystem between calls to "fcntl()" and "close()". This can be exploited to cause a system crash or potentially gain root privileges.
Updated Packages
================
Check if you have kernel installed:
# pacman-g2 -Q kernel
If found, then you should upgrade to the latest version:
# pacman-g2 -Sy kernel
Availability
============
The latest revision of this advisory is available at
http://frugalware.org/security/441
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info
iEYEARECAAYFAkgfBhQACgkQZ7NElSD1VhltDgCfR+RbFzhas+uSyiNOS/31csCL
e9cAn1V0UXidRkCYyuZjbXPDBcRXG1tw
=PHbP
-----END PGP SIGNATURE-----
More information about the Frugalware-security
mailing list